Privacy Policy

1. HIPAA Compliance

O&P Assist is fully HIPAA compliant and takes the security and privacy of your data seriously. We implement all required safeguards under HIPAA regulations, including:

• Encryption of data in transit and at rest
• Access controls and audit logging
• Automatic data deletion after 14 days
• Business Associate Agreements (BAAs) available
• Regular security assessments and updates

2. Data Collection and Usage

We collect only the minimum necessary information required to provide our services. Patient data is never used to train AI models and is automatically deleted after 14 days.

3. Security Measures

Our platform implements multiple layers of security:

• End-to-end encryption for all data transmission
• Secure cloud infrastructure with regular backups
• Multi-factor authentication
• Regular security audits and penetration testing

4. Your Rights

As a covered entity under HIPAA, you maintain full control over your patients' data. You can request data deletion at any time, and we provide tools to help you fulfill patient requests for their information.

5. Updates to Privacy Policy

We may update this privacy policy from time to time. We will notify you of any changes by posting the new privacy policy on this page and updating the effective date.